ModSecurity in Website Hosting
We offer ModSecurity with all website hosting plans, so your web apps will be shielded from destructive attacks. The firewall is switched on by default for all domains and subdomains, but if you'd like, you shall be able to stop it using the respective section of your Hepsia Control Panel. You'll be able to also switch on a detection mode, so ModSecurity shall keep a log as intended, but will not take any action. The logs that you will discover within Hepsia are quite detailed and offer information about the nature of any attack, when it took place and from what IP, the firewall rule which was triggered, etcetera. We employ a group of commercial rules that are frequently updated, but sometimes our admins add custom rules as well in order to better protect the websites hosted on our servers.
ModSecurity in Semi-dedicated Hosting
Any web app which you set up within your new semi-dedicated hosting account shall be protected by ModSecurity because the firewall is included with all our hosting packages and is switched on by default for any domain and subdomain that you include or create via your Hepsia hosting CP. You will be able to manage ModSecurity via a dedicated area within Hepsia where not only can you activate or deactivate it entirely, but you may also switch on a passive mode, so the firewall shall not stop anything, but it will still keep an archive of possible attacks. This requires just a click and you'll be able to look at the logs regardless of if ModSecurity is in passive or active mode through the same section - what the attack was and where it came from, how it was taken care of, etc. The firewall uses 2 groups of rules on our web servers - a commercial one which we get from a third-party web security company and a custom one which our administrators update manually in order to respond to recently discovered risks immediately.
ModSecurity in VPS
Safety is extremely important to us, so we set up ModSecurity on all virtual private servers that are made available with the Hepsia CP as a standard. The firewall can be managed through a dedicated section within Hepsia and is activated automatically when you include a new domain or create a subdomain, so you will not need to do anything by hand. You'll also be able to disable it or switch on the so-called detection mode, so it'll keep a log of potential attacks you can later study, but will not block them. The logs in both passive and active modes offer information about the form of the attack and how it was stopped, what IP it originated from and other valuable info that may help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. On top of the commercial rules we get for ModSecurity from a third-party security enterprise, we also implement our own rules since every now and then we detect specific attacks which are not yet present within the commercial package. That way, we could enhance the protection of your VPS right away as opposed to waiting for a certified update.
ModSecurity in Dedicated Hosting
All of our dedicated servers that are installed with the Hepsia hosting CP come with ModSecurity, so any program that you upload or set up shall be properly secured from the very beginning and you will not need to concern yourself with common attacks or vulnerabilities. An independent section within Hepsia will allow you to start or stop the firewall for each and every domain or subdomain, or turn on a detection mode so that it records info about intrusions, but doesn't take actions to prevent them. What you will find in the logs can help you to secure your websites better - the IP address an attack originated from, what website was attacked as well as how, what ModSecurity rule was triggered, etc. With this info, you could see if a site needs an update, whether you should block IPs from accessing your hosting server, and so forth. On top of the third-party commercial security rules for ModSecurity which we use, our admins add custom ones as well whenever they find a new threat that is not yet a part of the commercial bundle.